CVE-2014-0873

Currently unrated

Key Information:

Vendor: IBM
Status: Infosphere Master Data Management Server
Vendor: CVE Published:; 16 March 2014

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in the (1) Data Stewardship, (2) Business Admin, and (3) Product interfaces in IBM InfoSphere Master Data Management (MDM) Server 8.5 before 8.5.0.82, 9.0.1 before 9.0.1.38, 9.0.2 before 9.0.2.35, 10.0 before 10.0.0.0.26, and 10.1 before 10.1.0.0.15 allow remote attackers to hijack the authentication of arbitrary users.

References

http://www-01.ibm.com/support/docview.wss?uid=swg21666462

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/90994

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Mar 16, 2014
Vulnerability Reserved
Jan 6, 2014